Legal
Privacy Policy
Last updated: 26 March 2026
Sutra Retreats ("we", "us", "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store and protect information about you when you visit sutraretreats.com or contact us directly.
We operate in accordance with the UK General Data Protection Regulation (UK GDPR) and the EU General Data Protection Regulation (EU GDPR), where applicable.
1. Who We Are
Sutra Retreats is a boutique corporate retreat planning company operating across Europe and the UK. Our data controller contact is:
Lindsay Vogel
Email: lindsay@sutraretreats.com
2. What Data We Collect
We may collect the following types of personal data:
- Contact information: your name, email address, phone number, and company name — provided when you submit an enquiry via our contact form.
- Communication data: messages and correspondence you send us via email, WhatsApp, or our contact form.
- Marketing preferences: whether you have opted in to receive our newsletter or marketing communications.
- Usage data: information about how you use our website, including pages visited, time spent, and referring URLs (collected via cookies — see our Cookie Policy).
3. How We Use Your Data
We use your personal data for the following purposes:
- To respond to your enquiry and provide you with information about our retreat services.
- To send you marketing communications where you have given us consent (e.g. our newsletter via Mailchimp).
- To improve our website and services based on how they are used.
- To comply with legal and regulatory obligations.
4. Legal Basis for Processing
We rely on the following legal bases under UK/EU GDPR:
- Consent: when you submit our contact form or subscribe to our newsletter, you are giving us consent to contact you.
- Legitimate interests: to operate, maintain and improve our business and website.
- Legal obligation: where processing is necessary to comply with a legal or regulatory obligation.
5. How We Store and Protect Your Data
Your data is stored securely using industry-standard measures. We use the following third-party services to process data on our behalf:
- Web3Forms — for processing contact form submissions.
- Mailchimp (Intuit Inc.) — for email marketing and newsletter delivery.
- Cloudflare — for website hosting and security.
- Calendly — for booking discovery calls.
All third-party processors are bound by data processing agreements and comply with applicable data protection legislation.
6. How Long We Keep Your Data
We retain your personal data only for as long as necessary:
- Enquiry data is retained for up to 3 years or until you request deletion.
- Marketing list data is retained until you unsubscribe or request deletion.
- Website usage data (cookies/analytics) is subject to the retention periods in our Cookie Policy.
7. Your Rights
Under UK/EU GDPR, you have the following rights:
- Right to access: request a copy of the personal data we hold about you.
- Right to rectification: request correction of inaccurate or incomplete data.
- Right to erasure: request deletion of your personal data ("right to be forgotten").
- Right to restrict processing: request that we limit how we use your data.
- Right to data portability: receive your data in a structured, machine-readable format.
- Right to object: object to processing based on legitimate interests or for direct marketing.
- Right to withdraw consent: withdraw consent at any time where processing is based on consent.
To exercise any of these rights, please contact us at lindsay@sutraretreats.com. We will respond within 30 days.
8. Cookies
We use cookies on our website to improve your experience. For full details, please read our Cookie Policy.
9. Third-Party Links
Our website may contain links to third-party websites (such as Calendly or social media platforms). We are not responsible for the privacy practices of these sites and encourage you to read their privacy policies.
10. International Transfers
Some of our third-party service providers (including Mailchimp and Cloudflare) may process your data outside the UK or EU. Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page with a revised "last updated" date.
12. Contact & Complaints
If you have any questions about this Privacy Policy or how we handle your data, please contact:
Lindsay Vogel — Sutra Retreats
Email: lindsay@sutraretreats.com
If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.